ASRC

Senior Information Security Engineer

ASRC$100K — $130K *
Aerospace & Defense
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5+ years of experience in cybersecurity, especially with policy review and RMF implementation.
  • Proficiency in DoD and Army cybersecurity regulations and policies.
  • Expertise in the Risk Management Framework (RMF) process.
  • Strong analytical and problem-solving skills.
  • Skilled in cybersecurity tools, specifically eMASS.
  • Excellent written and verbal communication abilities, particularly in briefing senior leaders.
  • Relevant bachelor's degree from an ABET-accredited or CAE-designated institution.

Responsibilities

  • Establish and maintain Command Cybersecurity Standard Operating Procedures (SOPs) and Tactics, Techniques, and Procedures (TTPs).
  • Develop and maintain a cybersecurity portal for dissemination of key products and documentation.
  • Lead the RMF lifecycle for multiple systems and ensure maintenance of current Authority to Operate (ATO).
  • Administer a repository for tracking training and certifications of IT/Cybersecurity personnel.
  • Provide monthly briefings and reports on cybersecurity status to senior government representatives.
  • Research and analyze Cyber-related technologies and capabilities for command needs.
  • Conduct research to increase Cyber awareness and assess emerging trends for strategic planning.

Benefits

  • Health care, dental, and vision insurance.
  • Life insurance and 401(k) plan.
  • Education assistance for furthering employee skills.
  • Paid time off, including holidays and legally required leave.
Full Job Description
ASRC Federal is looking for an experienced IA Policy and Compliance Certified Professional - Senior to support their work with the U.S. Army Contracting Command (ACC) Chief Information Officer (CIO) G6 at Redstone Arsenal, AL. The Senior IA Professional serves as a subject matter expert (SME) and technical leader within the ACC Headquarters (HQ) Cybersecurity Division (CSD). This position is responsible for the development, implementation, and maintenance of cybersecurity policies, standards, and procedures, ensuring compliance with applicable Department of Defense (DoD), Army, and ACC regulations.

The Senior IA Professional will lead a team of intermediate-level personnel, providing guidance and oversight in all aspects of Risk Management Framework (RMF) activities, cybersecurity assessments, and incident response. This role requires a deep understanding of cybersecurity principles, a strong analytical ability, and excellent communication skills to effectively convey complex information to both technical and non-technical audiences.

KEY RESPONSIBILITIES
  • Establish, maintain, and retain the Command Cybersecurity Standard Operating Procedures (SOPs) and Tactics, Techniques, and Procedures (TTPs).
  • Develop and maintain an ACC CIO/G6 Cybersecurity portal for dissemination of key products and documentation.
  • Lead and oversee the Risk Management Framework (RMF) lifecycle for multiple systems. Work with the Intermediate IA Professionals to maintain current Authority to Operate (ATO) status for these systems and provide RMF guidance and support to other ACC locations with similar systems.
  • Ensure all Military, Government, and Contractor IT/Cybersecurity personnel maintain records of training and certifications in the approved repository. Administer and maintain the repository, tracking requirements and notifying users of deficiencies.
  • Provide executive monthly briefings and reports to Senior Level Government Representatives on cybersecurity status and performance metrics (e.g., Cyber Scorecard). Report all deficiencies to the Government on a weekly basis.
  • Provide plans, strategies, and analysis to support the ACC CIO/G6 Cybersecurity Official with strategic program development. Utilize assessment tools to determine current cybersecurity posture, identify risks, and develop actionable strategies. Align cybersecurity priorities with Army and ACC strategic plans.
  • Identify, investigate, research, analyze, and report on Cyber-related capabilities and technologies to meet current and emerging command needs. Assess and report on technology solutions for potential integration into the DoDIN or command enclaves.
  • Conduct research to increase Cyber awareness and protection. Assess the feasibility of emerging ideas and participate in service, joint, and interagency events. Identify emerging Cyber trends and prepare vision documents and strategic studies.
  • Complete, track, and report completion of Cybersecurity taskers to the responsible HQ ACC Division Chief.
  • Provide plans, strategies, and analysis to support implementation of privacy standards (AR 340-21) and strategic development of Privacy training and policies. Support the ACC CIO/G6 Privacy Official with program support, incident handling, and reporting.
  • Attend and participate in Cyber-related working groups, meetings, and briefings as directed by the Government and maintain the Cyber Division calendar.

REQUIRED QUALIFICATIONS
  • Minimum of 5 years of experience in cybersecurity, with a focus on policy review, RMF implementation, and compliance. Demonstrated experience leading and mentoring junior staff.
  • Proficient in:
  • DoD and Army cybersecurity regulations and policies.
  • The Risk Management Framework (RMF) process.
  • Strong analytical and problem-solving skills.
  • Proficiency in using cybersecurity tools and technologies (eMASS).
  • Strong written and verbal communication skills, including the ability to prepare and deliver briefings to senior leadership.


CLEARANCE LEVEL
  • SECRET Clearance


EDUCATION REQUIRMENTS
  • Bachelor's degree in information technology, Cybersecurity, Data Science, Information Systems, or Computer Science from an ABET-accredited or CAE-designated institution

CERTIFICATION
  • One of the following required: CISM, CISSO, FITSP-M, GCIA, GCSA, GCIH, GSLC, GICSP, CISSP-ISSMP, or CISSP

WORK ENVIRONMENT AND PHYSICAL DEMANDS:
  • This role is 100% on-site at Redstone Arsenal, AL.
  • Data Management: Applications will be reviewed in intervals. The first 10 candidates will be considered, followed by subsequent groups of 10.

We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. Benefits offered may include health care, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law. The salary offered will depend on several factors including, but not limited to, relevant experience, skills, education, geographic location, internal equity, business needs, and other factors permitted by law. Posted pay ranges are a general guideline only and are not a guarantee of compensation or salary.

About ASRC

Arctic Slope Regional Corporation (ASRC) is an Alaska Native corporation that was established in 1972 under the Alaska Native Claims Settlement Act (ANCSA). The company is owned by approximately 13,000 Iñupiat shareholders who live primarily in eight villages on Alaska's North Slope. ASRC is a diversified company with subsidiaries involved in oil and gas exploration and production, government services, construction, and resource development. The company has a strong commitment to sustainability and environmental stewardship, and has implemented a number of initiatives to reduce its environmental impact.
Learn more about ASRC
Size
3,500 employees
Industry
Founded
2003

Similar Jobs

More Jobs at ASRC

More Aerospace & Defense Jobs

Find similar Senior Information Security Engineer jobs: